CVE-2011-1566 : Directory traversal vulnerability in dc.exe 9.00.00.11059 and earlier in 7-Technologies Interactive Graphical SCADA Syst

Directory traversal vulnerability in dc.exe 9.00.00.11059 and earlier in 7-Technologies Interactive Graphical SCADA System (IGSS) allows remote attackers to execute arbitrary programs via ..\ (dot dot backslash) sequences in opcodes (1) 0xa and (2) 0x17 to TCP port 12397.

Published 2011-04-05 15:19:36

Updated 2012-05-12 03:37:38

Source MITRE

View at NVD, CVE.org

Vulnerability category: Directory traversal

Exploit prediction scoring system (EPSS) score for CVE-2011-1566

Probability of exploitation activity in the next 30 days: 86.93%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 98 % EPSS Score History EPSS FAQ

Metasploit modules for CVE-2011-1566

7-Technologies IGSS 9 Data Server/Collector Packet Handling Vulnerabilities

Disclosure Date: 2011-03-24

First seen: 2020-04-26

exploit/windows/scada/igss9_misc

This module exploits multiple vulnerabilities found on IGSS 9's Data Server and Data Collector services. The initial approach is first by transferring our binary with Write packets (opcode 0x0D) via port 12401 (igssdataserver.exe), and then send an EXE packet (opc

More information
Interactive Graphical SCADA System Remote Command Injection

Disclosure Date: 2011-03-21

First seen: 2020-04-26

exploit/windows/scada/igss_exec_17

This module abuses a directory traversal flaw in Interactive Graphical SCADA System v9.00. In conjunction with the traversal flaw, if opcode 0x17 is sent to the dc.exe process, an attacker may be able to execute arbitrary system commands. Authors: - Luigi

More information

CVSS scores for CVE-2011-1566

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C	10.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2011-1566

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2011-1566

http://www.securityfocus.com/bid/46936

7T Interactive Graphical SCADA System Multiple Security Vulnerabilities
Exploit

CVEs referencing this url
http://aluigi.org/adv/igss_8-adv.txt
http://www.vupen.com/english/advisories/2011/0741

Webmail | OVH- OVH
Vendor Advisory

CVEs referencing this url
http://www.exploit-db.com/exploits/17024

7-Technologies IGSS 9.00.00.11059 - Multiple Vulnerabilities - Windows remote Exploit
Exploit

CVEs referencing this url
http://www.us-cert.gov/control_systems/pdf/ICS-ALERT-11-080-03.pdf

404 - File Not Found | CISA
US Government Resource

CVEs referencing this url

Products affected by CVE-2011-1566

7T » Igss
cpe:2.3:a:7t:igss:*:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2011-1566